SEC highlights audit committee role in reliable financial reporting

The real job is the conversation, not just the audit file

The SEC’s latest reminder about audit committees lands where KPMG professionals feel it most: in the day-to-day exchanges that shape audit quality, disclosure discipline, and board trust. The agency says audit committees play a vital role in financial reporting through oversight of financial reporting, internal control over financial reporting, and the external independent audit process. That means the committee is not a passive recipient of a clean opinion. It is part of the control system that is supposed to catch trouble early, before it becomes a disclosure failure, a restatement risk, or an audit-quality problem.

For auditors, controllers, and advisory teams, the practical message is simple: if a risk is only captured in the workpapers but never clearly explained to the audit committee, the system has already weakened. The SEC’s emphasis on tone at the top and on efficient, constructive dialogue is a warning against polite ambiguity. In a pressure-filled reporting cycle, especially when estimates, controls, or independence issues are in play, the cost of an unclear conversation is often a missed red flag.

Why the SEC keeps coming back to audit committees

This is not a new regulatory instinct. The SEC adopted audit committee disclosure rules in 1999, signaling that shareholders needed a clearer view of how committees oversee financial statements and the reporting process. After the Sarbanes-Oxley Act was enacted in 2002, the commission pushed the framework further by strengthening independent audit committee expectations and requiring listed issuers to meet new listing standards by the earlier of their first annual shareholders meeting after January 15, 2004, or October 31, 2004.

That timeline matters because it shows how the SEC moved from disclosure to governance muscle. It also explains why the commission later required disclosures about audit committee financial experts under Sections 406 and 407 of Sarbanes-Oxley. The regulatory logic was clear: if audit committees are supposed to challenge management and support reliable financial information, they need to be active, knowledgeable, and independent enough to do it.

What that means inside a KPMG engagement

For KPMG audit professionals, the SEC’s message is not just about formal compliance with governance rules. It is about whether the team is equipping the committee with enough clarity to ask the next hard question. A strong audit committee conversation should not wait until the end of fieldwork or the final pre-issuance meeting. It should start when the team sees pressure points in controls, when management judgments become aggressive, or when new business complexity changes the risk profile.

That is especially important when discussing areas where management judgment can move earnings or disclosures, such as estimates, valuation assumptions, revenue recognition, or internal control deficiencies. If the audit team is too cautious, too compressed by deadlines, or too focused on technical completion, the committee may never hear the full story. The result can be a clean-looking file paired with weak governance, which is exactly the gap the SEC is trying to close.

Where audit committees earn their keep

The SEC’s guidance also helps define what a good audit committee is supposed to do under real-world pressure. A strong committee is active, informed, and independent, but it also needs to create the conditions for frank discussion. Management has to be candid. The auditor has to demonstrate that it understands the business. And key risks have to surface early enough for the committee to act, not merely to note.

That becomes critical when companies are under strain. A stressed finance function may be tempted to present judgments as settled facts. A busy audit team may accept a management explanation that sounds reasonable but lacks enough evidence. A committee that only receives polished summaries can miss the moment when a developing issue could still be corrected. In practice, the SEC is telling committees to listen for what is unsaid as much as what is said: control weaknesses that are being minimized, estimates that are too optimistic, or independence concerns that are being handled too casually.

Why the current environment raises the stakes

KPMG’s 2024 audit committee agenda described the business backdrop as one marked by geopolitical instability, surging inflation, high interest rates, and uncertainty. That is not a calm environment for reporting teams. Volatile markets and unstable supply chains can pressure estimates and impairments. Higher rates can affect valuations and debt-related disclosures. Geopolitical tension can complicate operations, forecasting, and going-concern thinking.

In that kind of setting, the SEC’s call for disciplined dialogue becomes more than a governance slogan. It becomes a practical safeguard against reporting drift. Controllers need to know when an issue is becoming material. Auditors need to know when skepticism should intensify. Audit committees need a clear line of sight into where management judgment is strongest, where it is weakest, and where the controls around it are not keeping pace with the business.

The PCAOB warning shows this is still a live problem

The Public Company Accounting Oversight Board has recently reinforced why this matters. In December 2024, the board said staff continues to identify a large number of deficiencies related to auditor communications with audit committees. In November 2024, it said the same about critical audit matters. Taken together, those findings suggest the gap is not theoretical. Auditors still struggle to communicate the most important matters in a way that equips committees to challenge management and oversee reporting effectively.

For KPMG teams, that means the communication test is just as important as the technical test. If a critical audit matter is not explained clearly, or if committee communications are too generic to show where the real risk sits, the audit committee loses the chance to probe. When that happens, the company may miss the early warning that an issue is growing. The result can be weaker audit oversight, not just a weaker discussion.

What better committee conversations should look like

The most useful takeaway for KPMG professionals is that audit committee communication should be specific, evidence-based, and early enough to matter. The SEC’s framework points to several habits that should be built into every serious engagement:

• Bring forward risk areas before they harden into surprises.
• Separate management’s narrative from the evidence supporting it.
• Explain where internal controls are working and where they are not.
• Spell out how significant estimates were challenged and why they were accepted.
• Make independence and audit scope issues explicit, not implied.
• Treat committee discussion as part of the audit, not a postscript to it.

This is where the regulatory history and the current pressure point meet. The SEC has spent decades strengthening audit committee expectations, from its 1999 disclosure rules to the Sarbanes-Oxley era emphasis on independent oversight and financial expertise. The PCAOB is still finding communication gaps. And the current operating environment is noisy enough that weak dialogue can quickly become weak reporting.

For KPMG professionals, the message is blunt: the committee is not just a recipient of the final answer. It is one of the mechanisms that helps produce the answer in the first place. When that conversation is early, candid, and grounded in evidence, it supports reliable financial reporting. When it is late or vague, the risks do not disappear. They usually show up somewhere worse.